The Maine Office of the Attorney General reported that Orgill, Inc. experienced a data breach discovered on October 31, 2021, due to unauthorized access to a third-party contractor’s laptop between October 28 and October 31, 2021. Approximately 2,459 individuals were affected, including 4 Maine residents, with compromised information including names, addresses, and Social Security numbers. Written notice was provided to affected individuals on December 8, 2021, and identity theft protection services were offered for twelve months through Experian.
TPRM report: https://www.rankiteo.com/company/orgill-inc.
"id": "org423072625",
"linkid": "orgill-inc.",
"type": "Breach",
"date": "10/2021",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'customers_affected': 2459,
'name': 'Orgill, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': 2459,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers']},
'date_detected': '2021-10-31',
'date_publicly_disclosed': '2021-12-08',
'description': 'Unauthorized access to a third-party contractor’s laptop '
'compromised personal information of approximately 2,459 '
'individuals.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers'],
'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Third-party contractor’s laptop'},
'references': [{'source': 'Maine Office of the Attorney General'}],
'response': {'communication_strategy': 'Written notice to affected '
'individuals',
'third_party_assistance': 'Experian'},
'title': 'Orgill, Inc. Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Third-party contractor’s laptop'}